Global Cyber Pulse: 5th Aug, 2024

August 5, 2024 | Cybersecurity
By Ashwani  Mishra, Editor-Technology, 63SATS

StormBamboo hacked an internet service provider, executing a DNS poisoning attack that compromised software update mechanisms on macOS and Windows systems. Simultaneously, the Magniber ransomware campaign has encrypted devices globally, demanding ransoms starting at $1,000. Cencora warned over a million people of a data breach, and the IRCTC fixed a critical vulnerability in its insurance portal. The UK’s ICO criticized social media firms for failing to protect children’s privacy, while a Russian threat actor posed as an Audi Q7 seller to deliver malware.

Stay ahead in the dynamic world of cybersecurity.

Here’s your concise guide to the latest trends, threats, and breakthroughs from around the globe:

StormBamboo Launches Sophisticated DNS Poisoning Attack on ISP

A hacking group named StormBamboo has infiltrated an internet service provider to execute a DNS poisoning attack, compromising insecure software update mechanisms. Detected in mid-2023, the attack targets macOS and Windows systems by exploiting vulnerabilities in automatic update processes.

Massive Magniber Ransomware Campaign Encrypts Devices Globally

The Magniber ransomware is wreaking havoc worldwide, encrypting home users’ devices and demanding ransoms starting at $1,000. Originally launched in 2017, this ransomware uses various methods, including Windows zero-days and fake updates, to infiltrate systems.

Cencora Warns Over One Million People of Data Breach

US pharmaceutical giant Cencora has alerted over a million individuals about a data breach that occurred in February. The breach, reported in May, involved sensitive health information, including patient names, addresses, and medication details.

IRCTC Fixes Critical Vulnerability on Insurance Portal

The Indian Railway Catering and Tourism Corporation (IRCTC) has resolved a major security flaw on its insurance portal, as reported by The Hindu. The vulnerability, discovered by cybersecurity researcher Nilabh Rajpoot, allowed unauthorized access to passengers’ travel details and nominee information.

ICO Criticizes Social Media Firms for Failing to Protect Children’s Privacy

The UK’s Information Commissioner’s Office (ICO) has issued warnings to 11 social media and video-sharing platforms for not adequately safeguarding children’s privacy. The ICO’s review of 34 platforms revealed significant concerns about the sign-up processes for young users.

Russian Threat Actor Poses as Audi Q7 Seller in Malware Campaign

A Russian threat actor, Fighting Ursa, has been found impersonating an Audi Q7 car seller to deliver malware. The campaign, identified by Palo Alto Networks Unit 42, likely began in March 2024 and targeted diplomats.